Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

obfuscated malicious vbscript

Thread starter ru5ty
Start date Sep 7, 2020

Status: Not open for further replies.

Sep 7, 2020

ru5ty

Systems Engineer

Hi all. I've encountered a malware through a spam email and am looking into it. I kinda know what it's doing by running it in a sandbox but would really like help on how to decode this to know everything that's happening.
Here is the full code:

https://github.com/DenisSlobodyanyuk/.ape-ransom/blob/master/vbscript.txt

and here is the output I got when replacing the execute parts of the script with wscript.echo:

https://github.com/DenisSlobodyanyuk/.ape-ransom/blob/master/vbscript.txt

Status: Not open for further replies.

Similar threads

Question

VBSCRIPT dont work windows 11 23h2 ???

Replies: 2

Views: 237

Oct 18, 2024

SoftwareRT

Question

Trying to adapt VBScript to search if machine is in an AD group 6

Replies: 8

Views: 801

Oct 24, 2024

SoftwareRT

Locked
Question

vbscript to read properties of JPEG file

Replies: 4

Views: 303

Sep 11, 2023

paullem

Locked
Question

HTA fails with Syntax Error when working VBScript inserted

Replies: 2

Views: 232

Aug 17, 2023

bdwilcox

Locked
Question

Excel VBA functions in VBScript

Replies: 4

Views: 218

Feb 19, 2023

dhookom

Facebook X (Twitter) Reddit Pinterest Tumblr WhatsApp Email Link

Part and Inventory Search

Sponsor

This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.

Accept Learn more…

Back

Top